Remote Access VPN on an ASA that Authenticates against a Remote LDAP server through a site to site VPN.
I've got a question here that I don't know the answer to off hand.
I've got a remote site that is a small office. There are no servers(Active Directory) at that site, though there is a local file store. The site has a l2l tunnel back to HQ, where they get active directory services. Is there any way to have a remote access VPN authenticate against the remote LDAP server group through the VPN?
I can make an LDAP server group, but when I assign an interface, that's where I get stuck. It's obviously not on the inside interface, as the servers don't reside in that subnet. If I choose the outside interface, the ASA will look for the private IP on that side, and not find it because it doesn't seem to send that off to the remote site.
Is there something that can be configured so the ASA recognizes that it needs to send it through the VPN ?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...